Skip to content

[Diagram] An extension tries to execute a request using its auth token #2665

Closed
Closed
[Diagram] An extension tries to execute a request using its auth token#2665
Assignees
stephen-crawford
Labels
triagedIssues labeled as 'Triaged' have been reviewed and are deemed actionable.
@stephen-crawford

Description

@stephen-crawford
stephen-crawford
opened on Apr 10, 2023

NOTE: This diagram occurs after the successful retrieval of the extension's auth token during #2664.

  1. Flow chart of: Extension tries to execute a request using its auth token
flowchart TD
    A[Extension_1] -->|Operation Request| B(Core)
    B --> | Forward to Security Plugin | C(Security plugin)
    C --> | parse auth token and evaluate privilegs| D(PrivilegesEvaluator)
    D -->| return 200 or 403| B
    B --> | if allowed | E(ExecuteRequest)
    B --> | if not allowed return 403 | A
    E --> | success or failure | B
    B --> | if success return 200 | A 
    B --> | if failure return failure code | A
Loading
  1. Sequence diagram of: Extension tries to execute a request using its auth token
sequenceDiagram
    participant A as Extension_1
    participant B as Core
    participant C as Security plugin
    participant D as PrivilegesEvaluator
    participant E as ExecuteRequest

    A->>B: Operation Request
    B->>C: Forward to Security Plugin
    C->>D: parse auth token and evaluate privileges
    D->>B: return 200 or 403
    alt allowed
        B->>E: ExecuteRequest
        E->>B: success, failure
        alt success
            B->>A: if success return 200
        else failure
            B->>A: if failure return failure code
        end
    else not allowed
        B->>A: if not allowed return 403
    end
Loading

Metadata

Metadata

Assignees

Labels

triagedIssues labeled as 'Triaged' have been reviewed and are deemed actionable.

Type

No type

Projects

Security for Extensions

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions